Home » Forum » Trisquel users
Submitted by Geshmy on Mon, 01/16/2017 - 21:33

Flidas and Abrowser

4 replies [Last post]
Mon, 01/16/2017 - 21:33
Geshmy
Geshmy
Online
Joined: 04/23/2015

After installing Trisquel 8 I went to trisquel.info in Abrowser and Abrowser squacked about inproper certification given by the website. I looked at the cert and it seemed in order so I told Abrowser to import it. But Trisquel.info took minutes to load. Extremely slow load for only trisquel.info was a persistent problem over the last couple of days. I tried tweaking with DNS settings, using the IP instead of the domain name, using Firefox speed hacks suggested at various sites and nothing worked. I try to go to trisquel.info and the message says something like 'retrieving data from trisquel.info' but it just sits there for maybe two to three minutes and meanwhile the browser was unresponsive. I brought up 'top' in the terminal and saw Abrowser using 103% of cpu. If I ping trisquel.info reponse time is lightenning fast. This really seemed to only affect trisquel.info though searx.me and other sites may have been a tick slow.

Using synaptic I uninstalled Abrowser.

Now, I don't see Abrowser listed in the repository.

Am a little worried about security at this point. Has anyone else experienced anything like this? Any recommendations?

I am using Dooble at the moment, a brand new one to me and seems nice so far.

Top
  • +1
    0
    -1
    Please use the rating system to mark posts that go against the Community Guidelines
Tue, 01/17/2017 - 00:04
#1
brashley46
brashley46
Offline
Joined: 08/18/2016

Yesterday and today I get that response in Midori; in Icecat it works just fine. Other sites are loading well in Midori. Maybe the website certificate is incompatible with Midori/Abrowser?

-- running Trisquel Mini 7 on my EeePC.

Top
  • +1
    0
    -1
    Please use the rating system to mark posts that go against the Community Guidelines
Tue, 01/17/2017 - 00:16
#2
Geshmy
Geshmy
Online
Joined: 04/23/2015

In Midori you saw the certificate issue? And did the web site load up fine?

Top
  • +1
    0
    -1
    Please use the rating system to mark posts that go against the Community Guidelines
Wed, 01/18/2017 - 07:50
#3
brashley46
brashley46
Offline
Joined: 08/18/2016

In Midori it won't get beyond the certificate issue. Screenshot attached. If I click on "trust this website" I get sreenshot2.

AttachmentSize
screenshot.pdf 32.51 KB
screenshot2.pdf 37.95 KB
Top
  • +1
    0
    -1
    Please use the rating system to mark posts that go against the Community Guidelines
Wed, 01/18/2017 - 20:18
#4
Geshmy
Geshmy
Online
Joined: 04/23/2015

I think I will open a new thread about below details

Those screenshots seem to be about the same as what I had. I don't know if this is related but yesterday I installed chkrootkit and ran it and got this message:

Searching for Linux/Ebury - Operation Windigo ssh... Possible Linux/Ebury - Operation Windigo installetd

This was in trisqel 8 which I had been enjoying for the last couple of days. I ended up doing a complete reformat and reinstall and now Abrowser is working fine.

One of the many things this Linux/Ebury - Operation Windigo ssh thing does is mess with the dns to cause the victim to go to fake websites.

By the way, my fresh install still gets the same message from chkrootkit but the follow up tests to determine a false positive are coming up better. I'm not sure if I'm out of the woods yet.

Some more info here
https://www.cert-bund.de/ebury-faq

Top
  • +1
    0
    -1
    Please use the rating system to mark posts that go against the Community Guidelines